Hi, I am setting up a new network for our company and am working on ACL's to control access to various network segments. All routing is performed on a layer 3 core switch. In this example, let's say we have the following 4 VLANS. Engineering, Sales, Finance, and Uplink (for internet). Currently, the default ACL allows access to ALL other VLANs. If I want to block access to all VLANs other than the internet, I need to set up an individual deny ACL for each of the VLAN's, Engineering and Finance. Are there other solutions that don't require creating individual ACL to block access each time a new VLAN is added? Example 2 of this support article mentions using the source VLAN rather then the subnet, however, this would also block internet traffic. What is the recommended solution Thanks
... View more